Text Size:   A+ A- A   •   Text Only
Site Image
Basic Information Security Principles
The basic aims of information security are often summarized in three principles:
  • Confidentiality means making sure that information is only seen by people who have the right to see it. For example, this could mean using a strong password on your computer, shredding sensitive documents, and locking filing cabinets.
  • Integrity means ensuring that information remains intact and unaltered. This means watching out for alterations through malicious action, natural disaster, or even a simple innocent mistake.
  • Availability implies having access to your information when you need it. In other words, it means making sure no person or event is able to block legitimate or timely access to information.
As you'll see, information security is more than just computer security. It also includes a wide range of physical security measures such as protecting your information assets against natural disasters or theft, and social engineering attacks such as someone tricking you into giving out sensitive information.

Featured Links
Here are some links that will give you an overview of basic information security principles.
Links to Web sites outside Oregon.gov do not constitute endorsement by Oregon state government or the Department of Administrative Services of the products, services or information provided on those Web sites. If you want to comment on the accuracy of a link, report a broken link, or suggest a new link, click on Web Site Feedback below.